BluGen: An Analytic Framework for Mission-Cyber Risk Assessment and Mitigation Recommendation
نویسندگان
چکیده
Systems security engineering (SSE) is a complex, manually intensive process, with implications for cost, time required, and repeatability/reproducibility. This paper describes BluGen, an analytic framework that generates risk plots and recommends prioritized mitigations for a target mission/system environment based on a stated level of threat and risk tolerance. The goal is to give working system security engineers a head start in their analysis. We describe BluGen in the context of Design Science Research and evaluate accordingly.
منابع مشابه
The Third Offset and a Fifth Domain? Balancing Game-Changing Innovation and Cyber Risk Mitigation
Cyber has changed the scope of the Navy’s mission and is placing new strains on our diplomatic, warfighting, legal, and economic/budgetary processes. Cybersecurity processes and techniques are increasingly critical to our warfighting missions, but they can also inhibit the pace and potential for high impact, game-changing innovation. Throughout its history, the Navy has shown the ability of inn...
متن کاملQuantifying the Mission Impact of Network-Level Cyber Defensive Mitigations
Modern missions of government and private organizations rely on computer networks to operate. As evidenced by several well-publicized cyber breaches, these missions are under attack. Several cyber defensive measures have been proposed to mitigate this threat, some meant to protect individual hosts on the network and others designed to protect the network at large. From a qualitative perspective...
متن کاملDetermining Optimal Risk Assessment Model in Construction Projects (Case study: steel plant construction project)
Introduction: Identifying occupational hazards and managing occupational safety and health risks is the most important mission and responsibility of the health and safety management system in organizations and adopting coded plans to achieve this is the key to continuously improving this system and promoting it. Method: This descriptive-analytic research has been written to determine the optim...
متن کاملDesign Considerations for a Cyber Incident Mission Impact Assessment (CIMIA) Process
Virtually all modern organizations have embedded information systems and networking technologies into their core business processes as a means to increase operational efficiency, improve decision making quality, reduce delays, and/or maximize profit. Unfortunately, this dependence can place the organization’s mission at risk when the loss or degradation of the confidentiality, integrity, availa...
متن کاملMITIGATE: An Innovative Cyber-Security Maritime Supply Chain Risk Management System
Despite the importance of Critical Information Infrastructures (CIIs) and dynamic ICT-based maritime Supply Chains (SCs) for ports operations, state-of-the-art Risk Management (RM) methodologies for maritime environments pay limited attention to cyber-security and do not adequately address security processes for international SCs. Motivated by these limitations, we have developed and will valid...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2017